CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12188 matches found

CVE-2026-46267

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

5.7AI score

Exploits0References8Affected Software1

RedHat Linux•added 8 hours ago•2 views

kernel: ip6_tunnel: clear skb2->cb[] in ip4ip6_err()

In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: clear skb2-cb in ip4ip6err Oskar Kjos reported the following problem. ip4ip6err calls icmpsend on a cloned skb whose cb was written by the IPv6 receive path as struct inet6skbparm. icmpsend passes IPCBskb2 to...

9.8CVSS5.8AI score0.00096EPSS

Exploits0References5

SUSE CVE•added 21 hours ago•5 views

SUSE CVE-2026-10294

A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function gfiletest of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclose...

5.3CVSS5.4AI score0.0003EPSS

Exploits0References3

Ubuntu•added yesterday•7 views

USN-8373-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the RxRPC networking subsystem when processing paged fragments. A local attacker...

8.8CVSS6.5AI score0.40266EPSS

Exploits42

Ubuntu•added yesterday•5 views

USN-8370-1: Linux kernel vulnerabilities

8.8CVSS6.3AI score0.40266EPSS

Exploits42

EUVD•added yesterday•7 views

EUVD-2026-33818

5.3CVSS5.5AI score0.0003EPSS

Exploits0References7

Tenable Nessus•added yesterday•2 views

Ubuntu 25.10 / 26.04 LTS : OpenJDK 26 vulnerabilities (USN-8341-1)

The remote Ubuntu 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8341-1 advisory. Thomas Beckers discovered that the JAXP component of OpenJDK 26 did not correctly authenticate certain APIs. A remote unauthenticated attacker...

7.5CVSS7.3AI score0.00154EPSS

Exploits0References10

NVD•added 2 days ago•6 views

CVE-2026-10294

5.3CVSS0.0003EPSS

Exploits0References6

OSV•added 2 days ago•3 views

DEBIAN-CVE-2026-10294

4.3CVSS5.5AI score0.0003EPSS

Exploits0References1

OSV•added 2 days ago•2 views

UBUNTU-CVE-2026-10294

5.3CVSS5.5AI score0.0003EPSS

Exploits0References8

ATTACKERKB•added 2 days ago•7 views

CVE-2026-10294

5.3CVSS5.5AI score0.0003EPSS

Exploits0References6

Debian CVE•added 2 days ago•4 views

CVE-2026-10294

5.3CVSS5.5AI score0.0003EPSS

Exploits0

CVE•added 2 days ago•7 views

CVE-2026-10294

CVE-2026-10294 affects PackageKit up to 1.3.5. The vulnerable component is the API function g_file_test in src/pk-transaction.c. Manipulation of the argument frontend-socket leads to improper authorization. The issue can be exploited remotely, and the exploit has been disclosed publicly and may b...

5.3CVSS5.5AI score0.0003EPSS

Exploits0References6

Cvelist•added 2 days ago•22 views

CVE-2026-10294 PackageKit API pk-transaction.c g_file_test improper authorization

5.3CVSS0.0003EPSS

Exploits0References6

NVD•added 2 days ago•6 views

CVE-2026-37229

FlexRIC v2.0.0 contains a reachable assertion in e2apcreatepdu triggered when ASN.1 PER decoding fails. A remote unauthenticated attacker can send any non-PER byte sequence e.g., a single 0x00 byte over SCTP to the near-RT RIC port 36421 or iApp port 36422 to crash the process via SIGABRT. The...

7.5CVSS0.00028EPSS

Exploits1References2

EUVD•added 2 days ago•5 views

EUVD-2026-33726

A flaw was found in rrdcached, a component of rrdtool. A local attacker with access to a rrdcached socket can exploit a stack-based buffer overflow by sending an oversized CREATE request. This vulnerability can lead to a denial of service by crashing the daemon or potentially allow for arbitrary...

7.8CVSS6.3AI score0.00013EPSS

Exploits0References2

ATTACKERKB•added 2 days ago•3 views

CVE-2026-49121

AI Tensor Engine for ROCm AITER through 0.1.14 contains an unauthenticated remote code execution vulnerability in the MessageQueue.recv function within shmbroadcast.py that allows unauthenticated remote attackers to execute arbitrary code by sending a malicious pickle payload to a ZMQ SUB socket...

9.2CVSS6.7AI score0.00245EPSS

Exploits0References4

CVE•added 2 days ago•7 views

CVE-2026-49121

CVE-2026-49121 affects AI Tensor Engine for ROCm (AITER) up to version 0.1.14. The vulnerability exists in the MessageQueue.recv() function in shm_broadcast.py, where an unauthenticated remote attacker can deliver a crafted pickle payload to a ZMQ SUB socket (no authentication, no HMAC, no format...

9.2CVSS6.7AI score0.00245EPSS

Exploits0References3

RedhatCVE•added 2 days ago•6 views

CVE-2026-5071

The SocketCAN implementation validates the length of a user-provided buffer containing a socketcanframe object using only a NETASSERT statement in zcansendtoctx before dereferencing it in socketcantocanframe. In production builds where assertions are disabled, a userspace application that control...

6.1CVSS5.9AI score0.00012EPSS

Exploits0References1

Ubuntu•added 2 days ago•6 views

USN-8358-1: haveged vulnerability

It was discovered that haveged incorrectly handled credential checks on its control socket. A local attacker could possibly use this issue to execute privileged commands...

7.8CVSS5.9AI score0.00004EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by